$ rpki-client -vvf repo-rpki.idnic.net/repo/2e33a9ef-5b5f-4429-834b-95b2b73680e6/0/3130332e3235312e3138302e302f32322d3234203d3e203538383138.roa File: 3130332e3235312e3138302e302f32322d3234203d3e203538383138.roa (raw, json) Hash identifier: FFWbcrgwEt8avpT8DpM1zZTtvliwRyBHooSUvsRbv54= Subject key identifier: 7C:0F:AE:C2:7B:D1:35:EA:43:BD:68:BA:B3:BD:43:E7:23:72:3F:D1 Certificate issuer: /CN=6C11FF5474BE690E545132237E53030296585D32 Certificate serial: 20FF348376930AE013C9F14C87EF0D427C2B0136 Authority key identifier: 6C:11:FF:54:74:BE:69:0E:54:51:32:23:7E:53:03:02:96:58:5D:32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6C11FF5474BE690E545132237E53030296585D32.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2e33a9ef-5b5f-4429-834b-95b2b73680e6/0/3130332e3235312e3138302e302f32322d3234203d3e203538383138.roa Signing time: Thu 30 May 2024 03:00:02 +0000 ROA not before: Thu 30 May 2024 02:55:02 +0000 ROA not after: Thu 29 May 2025 03:00:02 +0000 asID: 58818 IP address blocks: 103.251.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2e33a9ef-5b5f-4429-834b-95b2b73680e6/0/6C11FF5474BE690E545132237E53030296585D32.crl rsync://repo-rpki.idnic.net/repo/2e33a9ef-5b5f-4429-834b-95b2b73680e6/0/6C11FF5474BE690E545132237E53030296585D32.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6C11FF5474BE690E545132237E53030296585D32.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 02:10:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ff:34:83:76:93:0a:e0:13:c9:f1:4c:87:ef:0d:42:7c:2b:01:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6C11FF5474BE690E545132237E53030296585D32 Validity Not Before: May 30 02:55:02 2024 GMT Not After : May 29 03:00:02 2025 GMT Subject: CN=7C0FAEC27BD135EA43BD68BAB3BD43E723723FD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:75:9d:42:ab:f3:22:1e:45:8a:c2:74:c1:ad: 31:7a:cd:b9:1d:e8:7f:73:f5:82:a0:c9:98:e6:31: 14:90:36:ed:c0:29:53:d8:a9:34:1a:7c:27:4c:0e: 84:8d:d6:8c:db:af:ce:6c:af:8b:5e:7d:3a:0c:27: e2:a9:59:a3:1e:3b:54:fe:62:e1:0a:5e:19:1f:c8: 24:d7:02:62:c9:af:ce:93:46:f5:09:b8:fe:76:d5: be:34:5b:47:c7:b2:ca:3e:1b:89:64:ca:28:61:4b: 56:97:9a:04:14:96:d5:2a:67:5e:96:f2:2e:56:b2: a7:e5:cc:6c:fc:d6:c5:32:bf:5f:38:c1:94:18:ca: 5c:dd:48:fc:db:33:e4:c0:3a:2b:49:4b:3f:54:86: aa:71:c7:97:da:5d:88:e9:05:62:6f:17:74:f9:07: 3c:fb:5d:41:e1:25:ae:f7:7a:9f:3e:12:c8:78:06: f0:ef:f2:99:28:77:d7:35:e8:64:73:09:97:8e:f6: 3c:c4:0a:1b:d2:dd:b8:ae:f2:6e:6f:09:6b:92:99: f4:6d:81:99:b9:7c:79:3a:b0:9f:76:7d:57:13:04: e6:2f:66:56:67:90:8d:4b:fd:bd:ee:1c:8b:b8:fd: 22:1e:0e:57:69:8b:e9:16:5b:6c:ba:c2:7b:17:e5: 64:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:0F:AE:C2:7B:D1:35:EA:43:BD:68:BA:B3:BD:43:E7:23:72:3F:D1 X509v3 Authority Key Identifier: keyid:6C:11:FF:54:74:BE:69:0E:54:51:32:23:7E:53:03:02:96:58:5D:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2e33a9ef-5b5f-4429-834b-95b2b73680e6/0/6C11FF5474BE690E545132237E53030296585D32.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6C11FF5474BE690E545132237E53030296585D32.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2e33a9ef-5b5f-4429-834b-95b2b73680e6/0/3130332e3235312e3138302e302f32322d3234203d3e203538383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.251.180.0/22 Signature Algorithm: sha256WithRSAEncryption 47:a3:a0:90:39:88:9a:3f:cc:35:af:e2:04:2d:13:8e:1b:59: 3b:b2:ab:06:c4:b8:e8:89:a0:49:c6:d1:01:2f:08:15:e4:af: 3d:5f:fc:6a:4d:f2:e1:c7:3b:db:af:93:bb:eb:16:a0:1a:ff: 1d:40:b1:04:72:56:25:c7:ff:9d:17:3f:e1:30:e6:0f:41:ad: 32:fd:f9:ac:b9:ab:26:59:a2:ac:3f:a5:1d:24:0c:df:58:e5: 5b:ea:40:b5:6b:fe:8b:12:90:f4:5e:ef:d5:ad:4f:f6:f5:fa: e8:cd:7e:ee:35:0b:cb:c2:01:ac:e2:20:1d:3d:35:22:6a:c4: eb:c0:ad:ad:ae:e9:66:0d:c1:5b:d3:13:91:7e:ec:b1:53:8a: 48:c7:16:29:86:d6:5e:4a:02:55:23:95:d1:4a:ea:03:a6:c9: ec:62:1e:e3:74:1c:21:9a:71:98:02:82:f8:e3:dd:7c:da:d6: f4:30:16:12:1e:f4:b6:7e:20:ca:6d:d5:71:19:56:a1:9c:db: f5:49:31:2d:16:dc:3c:2a:84:3f:99:fa:fd:fb:2c:67:bb:84: 57:c6:7e:05:c6:40:9f:27:80:71:da:75:20:42:6c:79:ed:94: d0:c7:95:d6:82:6e:64:eb:87:76:26:6c:45:5f:cd:62:99:e3: 02:9c:7b:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIP80g3aTCuATyfFMh+8NQnwrATYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkMxMUZGNTQ3NEJFNjkwRTU0NTEzMjIzN0U1MzAzMDI5 NjU4NUQzMjAeFw0yNDA1MzAwMjU1MDJaFw0yNTA1MjkwMzAwMDJaMDMxMTAvBgNV BAMTKDdDMEZBRUMyN0JEMTM1RUE0M0JENjhCQUIzQkQ0M0U3MjM3MjNGRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTdZ1Cq/MiHkWKwnTBrTF6zbkd 6H9z9YKgyZjmMRSQNu3AKVPYqTQafCdMDoSN1ozbr85sr4tefToMJ+KpWaMeO1T+ YuEKXhkfyCTXAmLJr86TRvUJuP521b40W0fHsso+G4lkyihhS1aXmgQUltUqZ16W 8i5WsqflzGz81sUyv184wZQYylzdSPzbM+TAOitJSz9Uhqpxx5faXYjpBWJvF3T5 Bzz7XUHhJa73ep8+Esh4BvDv8pkod9c16GRzCZeO9jzEChvS3biu8m5vCWuSmfRt gZm5fHk6sJ92fVcTBOYvZlZnkI1L/b3uHIu4/SIeDldpi+kWW2y6wnsX5WTFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfA+uwnvRNepDvWi6s71D5yNyP9EwHwYDVR0j BBgwFoAUbBH/VHS+aQ5UUTIjflMDApZYXTIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZTMzYTllZi01YjVmLTQ0MjktODM0Yi05NWIyYjczNjgwZTYvMC82QzExRkY1NDc0 QkU2OTBFNTQ1MTMyMjM3RTUzMDMwMjk2NTg1RDMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkMxMUZGNTQ3NEJFNjkwRTU0NTEzMjIzN0U1MzAzMDI5NjU4 NUQzMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlMzNhOWVmLTViNWYtNDQyOS04 MzRiLTk1YjJiNzM2ODBlNi8wLzMxMzAzMzJlMzIzNTMxMmUzMTM4MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM4MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/u0MA0GCSqG SIb3DQEBCwUAA4IBAQBHo6CQOYiaP8w1r+IELROOG1k7sqsGxLjoiaBJxtEBLwgV 5K89X/xqTfLhxzvbr5O76xagGv8dQLEEclYlx/+dFz/hMOYPQa0y/fmsuasmWaKs P6UdJAzfWOVb6kC1a/6LEpD0Xu/VrU/29frozX7uNQvLwgGs4iAdPTUiasTrwK2t rulmDcFb0xORfuyxU4pIxxYphtZeSgJVI5XRSuoDpsnsYh7jdBwhmnGYAoL44918 2tb0MBYSHvS2fiDKbdVxGVahnNv1STEtFtw8KoQ/mfr9+yxnu4RXxn4FxkCfJ4Bx 2nUgQmx57ZTQx5XWgm5k64d2JmxFX81imeMCnHsa -----END CERTIFICATE-----Generated at Fri Feb 21 13:14:24 2025 by rpki-client